<?php
	/**
	*	@param <string> $username
	*	@param <string> $password
	*/
    public function checkLogin($username, $password) {
        $username = $this->SanitizeForSQL($username);
        $pwdmd5 = md5($password);
        $qry = "Select id, name from $this->usertable ".
            " where username='$username' and password='$pwdmd5' ".
            " and confirmcode='y'";
        $result = $this->mysqli->query($qry);
        if(!$result || mysql_num_rows($result) <= 0)
        {
            $this->HandleError("Error logging in. ".
                "The username or password does not match");
            return false;
        }
        return true;

    }
    
     
?>